CVE-2023-31998

HIGH

EdgeRouters/Aircubes - Buffer Overflow

Title source: llm

A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices.

Core 1

Core References

Patch, Vendor Advisory

CVSS v3 7.5

EPSS 0.0038

EPSS Percentile 59.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-120 CWE-787

Status published

Products (2)

ui/aircube_firmware < 2.8.9

ui/edgemax_edgerouter_firmware 2.0.9

Published Jul 18, 2023

Tracked Since Feb 18, 2026